BMW Fixes Software Flaw That Exposed 2.2 Million Cars to Break-Ins

Advertisement
By Reuters | Updated: 31 January 2015 12:41 IST
German luxury carmaker BMW has fixed a security flaw that could have allowed hackers to unlock the doors of up to 2.2 million Rolls-Royce, Mini and BMW vehicles, it said on Friday.

BMW said officials at German motorist association ADAC had identified the problem, which affected cars equipped with the company's ConnectedDrive software using on-board SIM cards -- the chips used to identify authorised users of mobile devices.

BMW drivers can use the software and SIM cards to activate door locking mechanisms, as well as a range of other services including real-time traffic information, online entertainment and air conditioning.

The security risk occurred when data was transmitted, BMW said, adding it did not impede the car's critical functions of driving, steering or braking.

BMW said it was not aware of any examples where the data had been used to compromise the security of a vehicle.

In recent years, cyber-security experts have criticised the automotive industry for failing to do more to secure internal communications of vehicles with network-connected features.

The danger, they say, is that once external security is breached, hackers can have free rein to access onboard vehicle computer systems which manage everything from engines and brakes to air conditioning.

They fear it is only a matter of time before hackers might break into wireless networks on cars to exploit software glitches and other vulnerabilities to try to harm drivers.

ADAC's security researchers were able to simulate the existence of a fake phone network, which BMW cars attempted to access, allowing hackers to manipulate functions activated by a SIM card.

BMW said it had taken steps to eliminate possible breaches by encrypting the communications inside the car using the same HTTPS (Hypertext Transfer Protocol Secure) standard used in Web browsers for secure transactions such as e-commerce or banking.

BMW said it was able to update its ConnectedDrive software automatically, when the vehicle connects up to the BMW Group server or the driver calls up the service configuration manually.

"The online capability of BMW Group ConnectedDrive allowed the gap to be closed quickly and safely in all vehicles," BMW said. "There was no need for vehicles to go to the workshop." 
Post your comments

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: BMW, Mini Cooper, Rolls Royce, cyber security, hack, hacker, in car software, security flaw
Alibaba Meets With China Regulator, Controversial Report Retracted
Dating Site Topface Says Paid Hacker to Not Sell Stolen Data
Advertisement

Related Stories

Ravi Teja’s BMW to Soon Drop on OTT: Know Everything About This Telugu Romance Drama Film
23 February 2026
Qualcomm Partners BMW to Bring New Automated Driving System to BMW iX3 SUV
5 September 2025
Insta360 X4 BMW Motorrad Limited Edition Action Camera Launched: Price, Specifications
1 November 2024
EV Buyers First Consider Usage Pattern Rather than Range of Car: BMW India President
18 January 2024
iQoo 12 Pro BMW M Motorsport Edition Design Revealed Ahead of November 7 Launch
28 October 2023
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Oppo Find X9 Ultra With 200-Megapixel Periscope Camera Launched Globally
  2. Poco M8s 5G Debuts Globally With 7,000mAh Battery: See Price, Features
  3. Vivo X300 FE Roundup: Expected Price in India, Specifications
  4. Motorola Edge 70 Fusion Review
  5. Motorola Edge 70 Pro+ Leaked Renders Hint at Design, Five Colour Options
  6. Jailer 2 OTT Release Date Reportedly Revealed Online: When and Where to Watch it Online?
  7. Xiaomi TV S Mini LED 75 (2026) Review
#Latest Stories
  1. Incoming Apple CEO John Ternus Already Driving AI Overhaul Ahead of Leadership Transition: Report
  2. NASA Shuts Down Voyager 1 Instrument to Extend Mission Life in Deep Space
  3. Oppo Enco Clip 2 With Open-Ear Design, Up to 40 Hours Total Battery Life Launched Alongside Oppo Watch X3 Mini
  4. Vivo Y6t Launched With 6,500mAh Battery, Snapdragon 4 Gen 2 SoC: Price, Specifications
  5. OCBC Partners Lion Global Investors and DigiFT to Launch Tokenised Gold Fund With GOLDX Token
  6. Oppo Pad 5 Pro Launched With 13,380mAh Battery, Snapdragon 8 Elite Gen 5 SoC Alongside Oppo Pad Mini: Price, Features
  7. Redmi K90 Max Launched With Dimensity 9500 SoC, 8,550mAh Battery and Active Cooling Fan: Price, Specifications
  8. Oppo Find X9 Ultra Launched With Snapdragon 8 Elite Gen 5 SoC, 200-Megapixel Periscope Camera: Price, Specifications
  9. Oppo Find X9s Pro Launched With 200-Megapixel Cameras, 7,025mAh Battery: Price, Specifications
  10. OnePlus Ace 6 Ultra Geekbench Listing Reveals MediaTek Dimensity 9500 Chip, 16GB RAM
Gadgets 360 is available in
Follow Us
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.